QwikSec

Security Database

CVE

CWE

Training

CVE-2022-22725

Published: Feb 4, 2022

Modified: Aug 3, 2024

PUBLISHED

Description

A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could lead to a buffer overflow causing program crashes and arbitrary code execution when specially crafted packets are sent to the device over the network. Protection functions and tripping function via GOOSE can be impacted. Affected Product: Easergy P3 (All versions prior to V30.205)

Vendor	Product	Versions
n/a	Easergy P3 (All versions prior to V30.205)	affected `Easergy P3 (All versions prior to V30.205)`

Weaknesses (CWE)

References

https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-011-04

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.